The vulnerability of the Microsoft Windows Codecs Library, used for processing media content on Windows operating systems, stems from errors in memory object handling. This vulnerability allows attackers to execute arbitrary code.

🗓️ 28 Aug 2020 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Windows Codecs Library flaw in memory object handling enables arbitrary code execution via an image.

Reporter	Title	Published	Views	Family All 16
Information Security Automation	Microsoft Patch Tuesday August 2020: vulnerabilities with Detected Exploitation, useful for phishing and others	30 Aug 202022:13	–	avleonov
Circl	CVE-2020-1560	8 Oct 202116:50	–	circl
CNVD	Microsoft Windows Codecs Library Remote Code Execution Vulnerability (CNVD-2020-46575)	13 Aug 202000:00	–	cnvd
CVE	CVE-2020-1560	17 Aug 202019:13	–	cve
Cvelist	CVE-2020-1560 Microsoft Windows Codecs Library Remote Code Execution Vulnerability	17 Aug 202019:13	–	cvelist
EUVD	EUVD-2020-12434	7 Oct 202500:30	–	euvd
Kaspersky	KLA11931 Multiple vulnerabilities in Microsoft Windows	11 Aug 202000:00	–	kaspersky
Microsoft CVE	Microsoft Windows Codecs Library Remote Code Execution Vulnerability	11 Aug 202007:00	–	mscve
NCSC	Vulnerabilities fixed in Microsoft Windows	11 Aug 202000:00	–	ncsc
NVD	CVE-2020-1560	17 Aug 202019:15	–	nvd

Source	Link
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1560
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2020081209
vuldb	www.vuldb.com/
web	www.web.nvd.nist.gov/view/vuln/detail

28 Aug 2020 00:00Current

7.7High risk

Vulners AI Score7.7

CVSS 26.9

CVSS 37.3

EPSS0.01465

Windows Codecs Library memory object handling arbitrary code execution image file